This topic describes how to install Sidecar. This topic also describes how to use a custom resource definition (CRD) to create a Logtail configuration to collect Kubernetes container logs in Sidecar mode.
Prerequisites
Implementation
In Sidecar mode, the Logtail container shares a log directory with an application container in a pod. The application container writes logs to the shared directory and the Logtail container monitors the changes of log files in the shared directory and collects logs. For more information, see Sidecar container with a logging agent and How Pods manage multiple containers.
Step 1: Install Sidecar
apiVersion: batch/v1
kind: Job
metadata:
name: nginx-log-sidecar-demo
namespace: default
spec:
template:
metadata:
name: nginx-log-sidecar-demo
spec:
restartPolicy: Never
containers:
- name: nginx-log-demo
image: registry.cn-hangzhou.aliyuncs.com/log-service/docker-log-test:latest
command: ["/bin/mock_log"]
args: ["--log-type=nginx", "--stdout=false", "--stderr=true", "--path=/var/log/nginx/access.log", "--total-count=1000000000", "--logs-per-sec=100"]
volumeMounts:
- name: nginx-log
mountPath: /var/log/nginx
##### logtail sidecar container
- name: logtail
# more info: https://cr.console.aliyun.com/repository/cn-hangzhou/log-service/logtail/detail
# this images is released for every region
image: registry.cn-hangzhou.aliyuncs.com/log-service/logtail:latest
# when recevie sigterm, logtail will delay 10 seconds and then stop
command:
- sh
- -c
- /usr/local/ilogtail/run_logtail.sh 10
livenessProbe:
exec:
command:
- /etc/init.d/ilogtaild
- status
initialDelaySeconds: 30
periodSeconds: 30
resources:
limits:
memory: 512Mi
requests:
cpu: 10m
memory: 30Mi
env:
##### base config
# user id
- name: "ALIYUN_LOGTAIL_USER_ID"
value: "${your_aliyun_user_id}"
# user defined id
- name: "ALIYUN_LOGTAIL_USER_DEFINED_ID"
value: "${your_machine_group_user_defined_id}"
# config file path in logtail's container
- name: "ALIYUN_LOGTAIL_CONFIG"
value: "/etc/ilogtail/conf/${your_region_config}/ilogtail_config.json"
##### env tags config
- name: "ALIYUN_LOG_ENV_TAGS"
value: "_pod_name_|_pod_ip_|_namespace_|_node_name_|_node_ip_"
- name: "_pod_name_"
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: "_pod_ip_"
valueFrom:
fieldRef:
fieldPath: status.podIP
- name: "_namespace_"
valueFrom:
fieldRef:
fieldPath: metadata.namespace
- name: "_node_name_"
valueFrom:
fieldRef:
fieldPath: spec.nodeName
- name: "_node_ip_"
valueFrom:
fieldRef:
fieldPath: status.hostIP
volumeMounts:
- name: nginx-log
mountPath: /var/log/nginx
##### share this volume
volumes:
- name: nginx-log
emptyDir: {}Step 2: Create a Logtail configuration
After you install Sidecar, you can configure an AliyunLogConfig CRD to create a Logtail configuration. The following script shows how to configure a CRD. To delete a Logtail configuration, you must delete the corresponding CRD.
apiVersion: log.alibabacloud.com/v1alpha1 ## The default value. You do not need to modify this parameter.
kind: AliyunLogConfig ## The default value. You do not need to modify this parameter.
metadata:
name: simple-stdout-example ## The resource name. The name must be unique in the cluster.
spec:
project: k8s-my-project ## The name of the project. If you do not specify this parameter, logs are sent to the project that is configured when you install Log Service components on the cluster.
logstore: k8s-stdout ## The name of the Logstore. A Logstore is automatically created if the specified Logstore does not exist.
machineGroups: ## The name of the machine group. This machine group must be the same as the specified ${your_machine_group_user_defined_id} in your Sidecar. This machine group is used to associate Sidecar and the CRD.
- nginx-log-sidecar
shardCount: 2 ## Optional. The number of shards. Valid values: 1 to 10. Default value: 2.
lifeCycle: 90 ## Optional. The retention period for which log data is stored in the Logstore. Unit: days. Valid values: 1 to 7300. Default value: 90. The value 7300 indicates that log data is permanently stored in the Logstore.
logtailConfig: ## The details of the Logtail configuration. For more information, see Logtail configuration files.
inputType: file ## The type of the data source. Valid values: file and plugin. Container stdout and stderr logs are not supported.
configName: simple-stdout-example ## The name of the Logtail configuration. This name must be the same as the resource name that is specified by the metadata.name field.
inputDetail: ## The detailed settings of the Logtail configuration. For more information, see Configuration examples.
...After you create a Logtail configuration, the Logtail container automatically collects and uploads logs to Log Service based on the Logtail confihuration. You can log on to the Log Service console to view the logs.
- The value of the configName field in the CRD must be unique in the specified Log Service Logstore. If multiple CRDs are associated with the same Logtail configuration, the Logtail configuration is affected when you delete or modify an associated CRD. In this case, the status of the other CRDs that are associated with the Logtail configuration is inconsistent with the status of the server.
- In Sidecar mode, only text logs can be collected. You must set the dockerFile parameter to false.
Configuration examples
The following example shows how to use a CRD to collect logs in Sidecar mode from a self-managed Kubernetes cluster in a data center. The project that is created in Log Service for log collection resides in the China (Hangzhou) region. Logs are collected over the Internet. The volume that is mounted on the /var/log/nginx directory of the nginx-log-demo and Logtail containers is an emptyDir volume named nginx-log.